Through the use of.NET single-file deployment tactics, a new malware strain known as BundleBot has been quietly operating under the surface and allowing threat actors to steal sensitive data from affected PCs.
In a report released this week, Check Point stated that “BundleBot is abusing the dotnet bundle (single-file), a self-contained format that results in very low or no static detection at all.” The company added that it is “commonly distributed via Facebook Ads and compromised accounts leading to websites masquerading as regular program utilities, AI tools, and games.”
Some of these websites impersonate Google Bard, the company’s conversational generative AI chatbot, in an effort to trick users into downloading a fake RAR package read more about Sophisticated BundleBot Malware Disguised as Google AI Chatbot and Utilities.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.